Defending Clients Against Crypto Ransomware
There’s malware, and then there’s really nasty malware. Ransomware definitely falls into that latter category, and it can make life hell for your clients who fall prey to it.
What’s ransomware, exactly? Ransomware encrypts users’ data, and forces them to pay ransom to regain access to that data. And all too often victims do have to pay; unless a business backs up all its data, it’s virtually impossible to get it back without paying.
Unfortunately, crypto ransomware has come a long way over the past 2 ½ years, and no single solution can stop it 100% of the time. But learning the right recovery and mitigation strategies can help technology solution providers (TSPs) keep their clients a step ahead of this virulent threat with effective protection.
Learn Defenses Against RansomwareView Webinar
Crypto Ransomware: Fighting the Problem with Real Solutions
Topics covered in the webinar will include:
- A brief overview of ransomware’s evolution
- How ransomware infects systems today
- The costs associated with being hit by ransomware
- How best to protect your clients from ransomware
To get a sneak preview of some issues we’ll be discussing in the webinar, download our colorful infographic: A Quick Guide to Stopping Ransomware. It’s a handy reference that graphically highlights several mitigation strategies that will protect your customers’ data should a crypto ransomware attack occur.
For TSPs who are unable to view the webinar, we’ve put together this list of best practices that can help you shield clients against ransomware:
1. Educate Your Clients
Ransomware is often delivered as a Trojan through an infected URL, or attachment on a phishing email. Just one wrong click by a user can unleash a ransomware attack, and cost a company thousands of dollars.
Prevention isn’t possible 100% of the time, but in most cases, attacks can be stopped if users know what to look for—and that’s something you can help them understand.
2. No Phishing Allowed
Roughly 91% of cyberattacks begin with phishing, so if you can stop phishing attacks, you can thwart most web-borne threats.
The key is to resist opening emails from unknown senders with attachments or links—and to spot suspicious emails even when they look like they’re from known senders.
3. Suspicious Website Red Flags
If a user enters a site and it immediately starts downloading a file, that’s a bad sign. Ignoring a browser window that warns users away from a site is similarly perilous.
Make sure clients understand these dangers, and introduce them to security tools that scan the web, and block suspicious sites.
4. Use Anti-Ransomware Technology
Reliable, cloud-based malware protection can help prevent some ransomware attacks. To ensure maximum protection, it’s important that those malware tools be kept current.
Always apply security patches, and software and plugin updates, as soon as they’re released and tested.
5. Wrap Networks in Layers
While most businesses have AV-scanning tools and firewalls, those alone won’t stop ransomware. Network protection requires a multilayered approach that both protects endpoints and the perimeter, and monitors inbound and outbound data.
Your clients need comprehensive, multilayered cloud security solutions that maximize protection, and minimize the chances of a ransomware attack.
6. Never Ever Skip Backups
Simply put, nothing is more effective in fighting a ransomware attack than restoring data from backups. Remind clients that without a backup in case of a ransomware attack, they either have to pay up, or kiss the data goodbye.
7. Add Automated Cloud Backup
A ransomware virus like, CryptLocker, can also encrypt backup drives if they’re physically connected to an infected machine. That’s why you should provide automated cloud-based backup.
This makes it virtually impossible to infect backup data, while giving clients several other benefits, including: a simplified backup process, storage of replicated data offsite, and anytime/anywhere access.
8. Stay On Top of Ransomware Developments
Like all malware, ransomware will continue to evolve. From a TSP’s standpoint, that makes it vital to regularly monitor ransomware’s evolution. You can’t be overeducated when it comes to this subject, because the more informed you are, the more protection you can offer.
When it comes to fighting ransomware, knowledge is power! Don’t miss your chance to sign up for the webinar to learn more impactful strategies to defend against ransomware.